AWS Certified Solutions Architect – Associate (SAA-C02) — Question 451

A solutions architect is designing a new hybrid architecture to extend a company's on-premises infrastructure to AWS. The company requires a highly available connection with consistent low latency to an AWS Region. The company needs to minimize costs and is willing to accept slower traffic if the primary connection fails.
What should the solutions architect do to meet these requirements?

Answer options

• A. Provision an AWS Direct Connect connection to a Region. Provision a VPN connection as a backup if the primary Direct Connect connection fails.
• B. Provision a VPN tunnel connection to a Region for private connectivity. Provision a second VPN tunnel for private connectivity and as a backup if the primary VPN connection fails.
• C. Provision an AWS Direct Connect connection to a Region. Provision a second Direct Connect connection to the same Region as a backup if the primary Direct Connect connection fails.
• D. Provision an AWS Direct Connect connection to a Region. Use the Direct Connect failover attribute from the AWS CLI to automatically create a backup connection if the primary Direct Connect connection fails.

Correct answer: A

Explanation

AWS Direct Connect provides the required consistent low latency for the primary hybrid path. Since the company wants to minimize costs and is willing to accept slower traffic during a failover, using a VPN as a backup is the most cost-effective choice compared to a second Direct Connect connection. Option B does not provide consistent low latency for primary traffic, and Option D relies on a non-existent AWS CLI auto-provisioning feature.